$ rpki-client -vvf rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft File: kCs-s81I0JqgoQybLLKA0KDNLbo.mft (raw, json) Hash identifier: JBEJkBSKEqUuOywG+GmQSvhoRjmj5RChS3j0Gaw6nuk= Subject key identifier: EE:5D:10:CE:4B:80:3C:30:04:FD:23:59:B7:6A:C0:DF:60:5C:0C:79 Authority key identifier: 90:2B:3E:B3:CD:48:D0:9A:A0:A1:0C:9B:2C:B2:80:D0:A0:CD:2D:BA Certificate issuer: /CN=A915A161/serialNumber=902B3EB3CD48D09AA0A10C9B2CB280D0A0CD2DBA Certificate serial: 0FE9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCs-s81I0JqgoQybLLKA0KDNLbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft Manifest number: 0FE9 Signing time: Fri 30 May 2025 17:37:51 +0000 Manifest this update: Fri 30 May 2025 17:37:50 +0000 Manifest next update: Fri 06 Jun 2025 17:37:50 +0000 Files and hashes: 1: kCs-s81I0JqgoQybLLKA0KDNLbo.crl (hash: 5on8CAlcu0FgREcyk9MzR7tYpvtStFCFguOBSUnlmCE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.crl rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCs-s81I0JqgoQybLLKA0KDNLbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4073 (0xfe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A161, serialNumber=902B3EB3CD48D09AA0A10C9B2CB280D0A0CD2DBA Validity Not Before: May 30 17:37:50 2025 GMT Not After : Jun 6 17:37:50 2025 GMT Subject: CN=6839ecee-332c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a3:51:64:90:60:8a:25:e9:ac:72:03:9e:58: c9:3b:31:14:56:04:cb:4c:8e:b3:0a:b0:2c:02:57: 93:8c:01:c1:72:e2:0e:88:07:eb:fb:1a:38:f9:2f: 5f:e0:a4:17:80:7b:51:fe:39:42:4c:ed:50:ec:77: d5:75:ad:a2:49:57:5a:56:9d:c9:db:93:a5:f2:49: 4a:5d:02:4b:16:6c:be:41:38:9d:7c:ad:43:f8:f5: 0f:33:ab:ac:5d:bc:0a:77:32:da:e6:71:2d:33:52: ff:4b:56:be:e9:45:62:94:59:1c:ba:0a:12:84:19: 4e:4c:f4:3e:93:45:0c:03:8f:5b:b0:3a:26:7c:ca: b0:c2:fb:67:c4:26:0e:79:a6:30:21:51:21:89:5a: 33:e0:71:30:1b:ef:60:da:c8:4f:0a:76:8c:11:0e: 17:65:0d:a6:df:2f:22:59:63:6e:7a:64:23:98:90: 54:24:d1:06:44:b0:56:d2:cc:1c:3a:e8:5e:f6:44: ff:aa:c7:55:e7:ea:a8:86:2e:89:80:34:09:9a:f3: 0e:e5:8e:c1:28:14:d6:4d:a1:2f:5d:9e:49:e3:3a: f0:9b:42:2e:4b:c7:68:d8:92:3d:db:7b:a1:1e:9f: 92:8e:c5:0d:5f:f7:65:22:fa:0c:36:f3:d9:ec:3d: 3f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:5D:10:CE:4B:80:3C:30:04:FD:23:59:B7:6A:C0:DF:60:5C:0C:79 X509v3 Authority Key Identifier: keyid:90:2B:3E:B3:CD:48:D0:9A:A0:A1:0C:9B:2C:B2:80:D0:A0:CD:2D:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCs-s81I0JqgoQybLLKA0KDNLbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:86:95:f8:b9:a8:39:15:e7:d2:5b:99:11:5d:50:81:ce:5e: d9:8f:d6:f9:99:2c:8f:48:88:80:1a:15:c5:6c:58:af:fd:fc: e5:1e:63:ab:b4:ed:6f:7f:be:17:27:d3:18:73:ed:99:a6:8a: 60:48:c8:60:17:82:a2:5a:9d:23:a6:5d:48:0b:4c:bd:30:7e: 90:38:04:1f:fb:49:c6:5b:8a:59:f9:be:b1:16:4e:5f:50:96: 30:49:f1:8f:b7:f5:76:9c:ab:4d:ed:6d:15:84:18:b6:6d:e8: 63:1f:ec:10:b9:e2:d7:02:6d:74:eb:9d:e5:f4:bb:2e:58:a9: a5:82:54:b9:69:c3:13:a1:db:d7:47:58:c6:a8:48:79:ed:49: 6c:80:d2:19:68:0e:b8:1a:33:4b:41:ff:4a:61:d0:0b:4a:9f: 66:1a:02:49:b1:ca:c7:a6:33:2b:aa:b4:57:44:c1:53:8f:f5: 34:28:f1:32:a2:6d:cc:ae:8c:48:61:b1:b5:68:7e:b8:03:5c: 3b:db:84:1a:35:62:85:f2:25:07:21:cd:f8:af:70:76:39:92: 6a:6e:a8:6e:df:e4:56:da:09:2f:fe:24:a1:0b:5e:9e:c1:a7: 23:96:8e:39:88:66:93:40:e0:7e:74:d2:b3:7b:de:b4:30:ed: d9:6f:db:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUExNjExMTAvBgNVBAUTKDkwMkIzRUIzQ0Q0OEQwOUFBMEExMEM5QjJDQjI4MEQw QTBDRDJEQkEwHhcNMjUwNTMwMTczNzUwWhcNMjUwNjA2MTczNzUwWjAYMRYwFAYD VQQDEw02ODM5ZWNlZS0zMzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKNRZJBgiiXprHIDnljJOzEUVgTLTI6zCrAsAleTjAHBcuIOiAfr+xo4+S9f 4KQXgHtR/jlCTO1Q7HfVda2iSVdaVp3J25Ol8klKXQJLFmy+QTidfK1D+PUPM6us XbwKdzLa5nEtM1L/S1a+6UVilFkcugoShBlOTPQ+k0UMA49bsDomfMqwwvtnxCYO eaYwIVEhiVoz4HEwG+9g2shPCnaMEQ4XZQ2m3y8iWWNuemQjmJBUJNEGRLBW0swc Ouhe9kT/qsdV5+qohi6JgDQJmvMO5Y7BKBTWTaEvXZ5J4zrwm0IuS8do2JI923uh Hp+SjsUNX/dlIvoMNvPZ7D0/fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO5dEM5L gDwwBP0jWbdqwN9gXAx5MB8GA1UdIwQYMBaAFJArPrPNSNCaoKEMmyyygNCgzS26 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTE2MS9CMDdCMkFCODRC MTAxMUU5QUFFM0VFNDNDNEY5QUUwMi9rQ3MtczgxSTBKcWdvUXliTExLQTBLRE5M Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tDcy1zODFJMEpxZ29ReWJMTEtBMEtETkxiby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTE2MS9CMDdCMkFCODRCMTAxMUU5QUFFM0VFNDNDNEY5QUUwMi9rQ3MtczgxSTBK cWdvUXliTExLQTBLRE5MYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVhpX4uag5FefSW5kRXVCBzl7Zj9b5mSyPSIiAGhXFbFiv/fzlHmOr tO1vf74XJ9MYc+2ZpopgSMhgF4KiWp0jpl1IC0y9MH6QOAQf+0nGW4pZ+b6xFk5f UJYwSfGPt/V2nKtN7W0VhBi2behjH+wQueLXAm10653l9LsuWKmlglS5acMTodvX R1jGqEh57UlsgNIZaA64GjNLQf9KYdALSp9mGgJJscrHpjMrqrRXRMFTj/U0KPEy om3MroxIYbG1aH64A1w724QaNWKF8iUHIc34r3B2OZJqbqhu3+RW2gkv/iShC16e wacjlo45iGaTQOB+dNKze960MO3Zb9th -----END CERTIFICATE-----Generated at Sat May 31 17:00:19 2025 by rpki-client